Zero configuration communication between a browser and a networked media device

ABSTRACT

A method, apparatus and system related to zero configuration communication between a browser and a networked media device are disclosed. In one embodiment, a method of a client device includes constraining an executable environment in a security sandbox, executing a sandboxed application in the executable environment using a processor and a memory, and automatically instantiating a connection between the sandboxed application and a sandbox reachable service of a networked media device. The method may include processing an identification data associated with the sandbox reachable service sharing a public address with the client device. The method may also include determining a private address pair of the sandbox reachable service based on the identification data. Further, the method may include establishing a communication session between the sandboxed application and the sandbox reachable service using a cross-site scripting technique of the security sandbox or appending a header of a hypertext transfer protocol.

CLAIM OF PRIORITY

This disclosure claims priority to U.S. Provisional Patent Application No. 61/118,286 filed Nov. 26, 2008 and titled DISCOVERY, ACCESS CONTROL, AND COMMUNICATION WITH NETWORKED SERVICES FROM WITHIN A SECURITY SANDBOX.

This disclosure claims priority to U.S. Provisional Patent Application No. 61/584,168 filed Jan. 6, 2012 and titled CAPTURING CONTENT FOR DISPLAY ON A TELEVISION.

This disclosure claims priority to U.S. Continuation application Ser. No. 13/470,814 filed May 14, 2012 and titled DISCOVERY, ACCESS CONTROL, AND COMMUNICATION WITH NETWORKED SERVICES FROM WITHIN A SECURITY SANDBOX which further claims priority to U.S. patent application Ser. No. 12/592,377 filed Nov. 23, 2009 and titled DISCOVERY, ACCESS CONTROL, AND COMMUNICATION WITH NETWORKED SERVICES FROM WITHIN A SECURITY SANDBOX.

FIELD OF TECHNOLOGY

This disclosure relates generally to the technical field of networking, and in one example embodiment, this disclosure relates to a method, apparatus and system of zero configuration communication between a browser and a networked media device.

BACKGROUND

A communication may be established between a client device (e.g., a laptop, a tablet device, a data processing) and a media device (e.g., a television, a projection device, a multidimensional visual emersion system, a console). For example, a user of the client device may need to read a manual to understand a protocol to configure the media device into a networked media device (the media device registered in a communication network). The user may not understand the protocol. As such, the user may consume significant customer support time in configuring the media device. Alternatively, the user may need to expend financial resources to request assistance from a network administrator to assist the user in configuring the media device. This may be cost prohibitive for the user.

Furthermore, the user may need to associate the media device with the client device. The user may need a code that uniquely identifies the media device. The user may be unable to locate the code that uniquely identifies the media device. Even still, the user may need to create an account to register a communication session between the client device and the media device. This may be time consuming and difficult. As a result, the user may give up and not associate the client device and the media device. Therefore, a revenue opportunity may be missed because an interested party (e.g., a distribution carrier, a set top box operator, a search engine, an advertiser, the user etc.) may be unable to access behavioral data associated with use of the media. In addition, the user may be inconvenienced when a programming on the media device and the client device remain independent of each other.

SUMMARY

A method, apparatus and system related to zero configuration communication between a browser and a networked media device are disclosed. In one aspect, a method of a client device includes constraining an executable environment in a security sandbox. The method also includes executing a sandboxed application in the executable environment using a processor and a memory. Further, the method includes automatically instantiating a connection between the sandboxed application and a sandbox reachable service of a networked media device.

The method may include processing an identification data associated with the sandbox reachable service sharing a public address with the client device. The method may also include determining a private address pair of the sandbox reachable service based on the identification data. Additionally, the method may include establishing a communication session between the sandboxed application and the sandbox reachable service using a cross-site scripting technique of the security sandbox. Further, the method may include appending a header of a hypertext transfer protocol to permit the networked media device to communicate with the sandboxed application as a permitted origin domain through a Cross-origin resource sharing (CORS) algorithm. The header may be either one of a origin header when the CORS algorithm is applied and a referrer header in an alternate algorithm.

The method may further include accessing a pairing server when processing the identification data associated with the sandbox reachable service sharing the public address with the client device. The pairing server may perform a discovery lookup of any device that has announced that it shares the public address associated with the client device. The sandbox reachable service may announce itself to the pairing server prior to the establishment of the communication session between the sandboxed application and the sandbox reachable service. The sandbox reachable service may also announce its availability across a range of public addresses such that the sandboxed application communicates with the sandbox reachable service in any one of the range of the public addresses. However, the range of public addresses may be known by the pairing server so that the announcement of the availability of the sandbox reachable service across the range of public addresses is unnecessary. The sandbox reachable service may communicate a global unique identifier and/or an alphanumeric name to the pairing server along with the private address pair of the sandbox reachable service. The private address pair may include a private IP address and a port number associated with the sandbox reachable service.

The method may further include eliminating a communication through a centralized infrastructure when the sandboxed application and the sandbox reachable service communicate in a shared network common to the client device and the networked media device when the connection is established. The shared network may be a local area network, a multicast network, an anycast network, and/or a multilan network. The method may also include minimizing a latency in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked media device when the connection is established. Further, the method may include improving privacy in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked media device when the connection is established.

The sandboxed application may be a web page, a script, a binary executable, an intermediate bytecode, an abstract syntax tree, and/or an executable application in the security sandbox. The sandboxed application may comprise a markup language application such as a HyperText Markup Language 5 (HTML5) application, a Javascript® application, an Adobe® Flash® application, a Microsoft® Silverlight® application, a JQuery® application, and/or an Asynchronous Javascript® and a XML (AJAX) application. An access control algorithm may govern a policy through which a secondary authentication is required when establishing a communication between the sandboxed application and the networked media device. The method may include utilizing an exception to a same origin policy through a use of a hyperlink, a form, the script, a frame, a header, and an image when establishing the connection between the sandboxed application and the sandbox reachable service.

The method may include extending the security sandbox with a discovery algorithm and a relay algorithm through a discovery module and a relay module added to the security sandbox. The method may also include bypassing a pairing server having the discovery algorithm and the relay algorithm when establishing the connection between the sandboxed application and the sandbox reachable service when the security sandbox is extended with the discovery algorithm and the relay algorithm through the discovery module and the relay module added to the security sandbox.

The method may further include applying the discovery algorithm of the security sandbox to determine that the networked media device having the sandbox reachable service communicates in a shared network common to the client device and the networked media device. The method may also include applying the relay algorithm of the security sandbox to establish the connection between the sandboxed application and the sandbox reachable service of the networked media device. The discovery algorithm may utilize a protocol comprising a Bonjour® protocol, a SSDP protocol, a LSD uTorrent® protocol, a multicast protocol, an anycast protocol, and/or another Local Area Network (LAN) based protocol that discovers services in a LAN based on a broadcast from any one of an operating system service, the security sandbox, the client device, the sandbox reachable service, and the networked media device.

A cookie associated with the security sandbox may be used to store a remote access token on a storage of the client device. The remote access token may identify a set of communicable private Internet Protocol (IP) addresses and/or hardware addresses associated with sandbox reachable services that previously operated on a common shared network with the client device. The client device may communicate with the sandbox reachable services that previously operated on the common shared network through the remote access token.

The client device and the networked media device may reside on networks that are incommunicable with each other comprising a firewall separation, a different network separation, a physical separation, and/or an unreachable connection separation. The sandboxed application of the security sandbox of the client device and the sandbox reachable service of the networked media device may communicate with each other through a relay service employed by a pairing server having a discovery module and a relay module to facilitate a trusted communication between the sandboxed application and the sandbox reachable service.

The trusted communication may be facilitated in a manner such that the sandboxed application never learns a private IP address and/or a hardware address of the networked media device. This may occur when a first Network Address Translator (NAT) device receives communications from a public IP address of a different network on which the sandbox reachable service operates, and a second NAT device translates the private IP address of the networked media device to the public IP address visible to the sandboxed application. The first NAT device may be coupled with a network on which the client device operates. The second NAT device may be coupled with the different network on which the networked media device operates.

The networked media device may comprise a number of sandbox reachable applications including the sandbox reachable application. A service agent module of the networked media device may coordinate communications with the discovery module of the security sandbox and/or the pairing server. The security sandbox may be an operating system on which the sandboxed application is hosted and/or a browser application of the operating system. The networked media device may be a television, a projection screen, a multimedia display, a touchscreen display, an audio device, and/or a multidimensional visual presentation device.

The method may include utilizing a WebSocket and/or a long polling service message query interface to reduce a latency of message delivery during the trusted communication between the sandboxed application and the sandbox reachable service. The method may also include optimizing a polling period between polling such that it is less than a timeout period of a session through the relay service. The method may further include initiating the relay service through a series of web pages where information is communicated using hyperlinks that point at the pairing server, and/or a form having a confirmation dialog that is submitted back to the pairing server. A global unique identifier may be masked through the pairing server when the confirmation dialog is served from the pairing server.

In another aspect, a method of a networked device includes announcing a sandbox reachable service of the networked device to a discovery module using a processor and memory. The method also includes automatically instantiating a communication between the sandbox reachable service of the networked device and a client device when a relay module sends a request from a sandboxed application of the client device to the sandbox reachable service.

In yet another aspect, a system includes a networked device to announce a sandbox reachable service of the networked device to a discovery module using a processor and memory. The system also includes a client device to constrain an executable environment in a security sandbox, to execute a sandboxed application in the security sandbox, and to automatically instantiate a connection between the sandboxed application and the sandbox reachable service of the networked device.

In still another aspect, a method of a pairing server includes receiving, storing using a processor and a memory, and communicating to a client device a global unique identifier and/or an alphanumeric name in an announcement from a networked device along with a hardware address associated with the networked device, a public address pair associated with a sandbox reachable service of the networked device, and/or a private address pair associated with the sandbox reachable service of the networked device when a shared network is determined to be commonly associated with the client device and the networked device. The shared network is a local area network, a multicast network, an anycast network, and/or a multilan network.

The methods, system, and/or apparatuses disclosed herein may be implemented in any means for achieving various aspects, and may be executed in a form of machine readable medium embodying a set of instruction that, when executed by a machine, causes the machine to perform any of the operations disclosed herein. Other features will be apparent from the accompanying drawing and from the detailed description that follows.

BRIEF DESCRIPTION OF DRAWINGS

Example embodiments are illustrated by way of example and not limitation in the figures of the accompanying drawing, in which like references indicate similar elements and in which:

FIG. 1 is a block diagram of a system of automatic bidirectional communication between multiple devices sharing a common network, according to one embodiment.

FIG. 2 is a block diagram of a system of automatic bidirectional communication between a client device 100 and a networked device 102 using a server, according to one embodiment.

FIG. 3 is an exploded view of the security sandbox 104, according to one embodiment.

FIG. 4 is an exploded view of the pairing server 200, according to one embodiment.

FIG. 5 is an exploded view of the client device 100, according to one embodiment.

FIG. 6 is a table of example network information stored in a database 422 of a pairing server 200, according to one embodiment.

FIG. 7 is a block diagram of a method by which a security sandbox 104 can communicate with a sandbox reachable service 114 that previously operated on a shared network 202, according to one embodiment.

FIG. 8 is a schematic diagram of a private network 800 and a private network 802 communicating over the public Internet via a NAT device 804 and a NAT device 806, according to one embodiment.

Other features of the present embodiments will be apparent from the accompanying drawings and from the detailed description that follows.

DETAILED DESCRIPTION

Example embodiments, as described below, relate to a method, an apparatus and a system related to zero configuration communication between a browser and a networked media device are disclosed, according to one or more embodiments.

FIG. 1 is a block diagram of a system of automatic bidirectional communication (e.g., sending and receiving information in both directions without prior configuration by a human) between multiple devices sharing a common network, according to one embodiment. FIG. 1 shows a client device 100, a networked device 102, a security sandbox 104, an executable environment 106, a processor 108, a storage 109, a memory 110, a sandboxed application 112, and a sandbox reachable service 114. The client device 100 communicates bidirectionally with the networked device 102 of FIG. 1.

According to one embodiment, a client device 100 may be a computer, a smartphone, and/or any other hardware with a program that initiates contact with a server to make use of a resource. A client device 100 may constrain an executable environment 106 in a security sandbox 104, execute a sandboxed application 112 in a security sandbox 104 using a processor 108 and a memory 110, and automatically instantiate (e.g., manifest) a connection (e.g., a complete path between two terminals over which two-way communications may be provided) between a sandboxed application 112 and a sandbox reachable service 114 of the networked device 102.

According to one embodiment, a networked device 102 may be a television, stereo, game console, another computer, and/or any other hardware connected by communications channels that allow sharing of resources and information. A networked device 102 may comprise a number of sandbox reachable applications. A networked device 102 may announce a sandbox reachable service 114 using a processor 108 and a memory 110. According to one embodiment, a processor 108 may be a central processing unit (CPU), a microprocessor, and/or any other hardware within a computer system which carries out the instructions of a program by performing the basic arithmetical, logical, and input/output operations of the system. According to one embodiment, a memory 110 may be a random access memory (RAM), a read only memory (ROM), a flash memory, and/or any other physical devices used to store programs or data for use in a digital electronic device.

The security sandbox 104, the processor 108, the storage 109, and the memory 110 each exist within the client device 100 of FIG. 1, and they communicate bidirectionally with each other. According to one embodiment, a security sandbox 104 may be an operating system on which the sandboxed application 112 is hosted, a browser application of the operating system, and/or any other mechanism for separating running programs to execute untested code and/or untrusted programs from unverified third-parties, suppliers, untrusted users, and untrusted websites. According to one embodiment, a storage 109 may be a technology consisting of computer components and recording media used to retain digital data.

The executable environment 106 exists within the security sandbox 104 of FIG. 1. According to one embodiment, an executable environment 106 may be a virtual machine, a jail, a scripting language interpreter, a scratch space on disk and memory, and/or any other tightly controlled set of resources in which to run guest programs.

The sandboxed application 112 exists within the executable environment 106 of FIG. 1. According to one embodiment, a sandboxed application 112 may be an untested code, an untrusted program (e.g., from an untrusted web page), and/or any other software that can be executed with the appropriate runtime environment of the security sandbox 104.

The sandbox reachable service 114 exists within the networked device 102 of FIG. 1. According to one embodiment, a sandbox reachable service 114 may be a smart television application, a set-top box application, an audio device application, a game console application, a computer application, and/or any other service that can be discovered and communicated with from within the sandboxed application 112. FIG. 1 may encompass constraining a sandbox reachable service 114 in a security sandbox 104 where it is described sandbox reachable service 114, according to one embodiment. A security sandbox 104 may not allow a sandbox reachable service 114 that is constrained in the security sandbox 104 to open a server socket and receive inbound connections. However, a sandbox reachable service 114 that is constrained in the security sandbox 104 may still announce and be discovered, but all communications between a client device 100 and a networked device 102 may need to traverse through a relay in a pairing server 200.

FIG. 2 is a block diagram of a system of automatic bidirectional communication between a client device 100 and a networked device 102 using a server, according to one embodiment. FIG. 2 shows a client device 100, a networked device 102, a security sandbox 104, an executable environment 106, a processor 108, a memory 110, a sandboxed application 112, a pairing server 200, a shared network 202, a Wide Area Network (WAN) 204, a devices 206, a global unique identifier (GUID) 208, an alphanumeric name 210, a private address pair 212, a sandbox reachable service 114, an identification data 216, a switch 218, a public address pair 220, and a hardware address 222.

The client device 100, the networked device 102, and the devices 206 communicate bidirectionally with each other through the switch 218 in the shared network 202. According to one embodiment, a devices 206 may be a television, a projection screen, a multimedia display, a touchscreen display, an audio device, a weather measurement device, a traffic monitoring device, a status update device, a global positioning device, a geospatial estimation device, a tracking device, a bidirectional communication device, a unicast device, a broadcast device, a multidimensional visual presentation device, and/or any other devices with a network interface. According to one embodiment, a switch 218 may be a telecommunication device (e.g., a broadcast, multicast, and/or anycast forwarding hardware) that receives a message from any device connected to it and then transmits the message only to the device for which the message was meant.

According to one embodiment, a shared network 202 may be a local area network, a multicast network, an anycast network, a multilan network, a private network (e.g., any network with a private IP space), and/or any other collection of hardware interconnected by communication channels that allow sharing of resources and information. When a sandboxed application 112 and a sandbox reachable service 114 communicate in a shared network 202 common to the client device 100 and a networked device 102 when a connection is established, a client device 100 may eliminate a communication through a centralized infrastructure (e.g., a pairing server 200 which may be used only for discovery), minimize latency in the communication session (e.g., by establishing a connection between a client device 100 and a networked device 102 rather than by relaying via a pairing server 200), and improve privacy in the communication session.

FIG. 2 may encompass establishing a shared network 202 based on a bidirectional communication that does not use a relay service where it is described a shared network 202, according to one embodiment. Multiple local area networks (LANs) may share a public IP address. A client device 100 may reside on one LAN, and a sandbox reachable service 114 may reside on another LAN. A client device 100 may discover a sandbox reachable service by matching public Internet Protocol (IP) addresses. However, a sandbox reachable service 114 that is not constrained to a security sandbox 104 may have an unconstrained view (e.g., it may have access to Media Access Control addresses, Address Resolution Protocol, and/or routing tables) of a shared network 202.

A client device 100 may attempt to communicate with a sandbox reachable service 114 (e.g., by opening a Transmission Control Protocol connection and/or by sending a User Datagram Protocol datagram) without using a relay service. A shared network 202 may be established if a connection successfully handshakes, a datagram arrives, and/or the client device 100 and the sandbox reachable service 114 otherwise communicate bidirectionally without using a relay service.

FIG. 2 may also encompass establishing a shared network 202 based on a determination that a client device 100 and a sandbox reachable service 114 reside on a same LAN where it is described a shared network 202, according to one embodiment. For example, a networked device 102 may broadcast ping (e.g., using Internet Control Message Protocol) and listen for a response from a client device 100.

FIG. 2 may further encompass establishing a shared network 202 by using an address resolution protocol (e.g., ARP) where it is described a shared network 202, according to one embodiment. A sandbox reachable service 114 may determine that a client device 100 resides on a same LAN if the IP address of the client device 100 can be resolved to a LAN address using an IP-to-LAN address resolution protocol (e.g., ARP).

The shared network 202 communicates with the pairing server 200 through the WAN 204. According to one embodiment, a pairing server 200 may be a computer hardware system dedicated to enabling communication between a sandboxed application 112 and a sandbox reachable service 114. According to one embodiment, a WAN 204 may be the Internet and/or any other telecommunications network that links across metropolitan, regional, and/or national boundaries using private and/or public transports. A networked device 102 may announce an availability of a sandbox reachable service 114 across a range of public addresses such that a sandboxed application 112 communicates with the sandbox reachable service 114 in any one of the range of the public addresses. However, a range of public addresses may be known by a pairing server 200 so that the announcement of the availability of a sandbox reachable service 114 across a range of public addresses is unnecessary.

The identification data 216 exists within the sandbox reachable service 114 of FIG. 2. According to one embodiment, an identification data 216 may be a reference information associated with an application sharing a public address with a client device 100, a networked device 102, and/or a devices 206 (e.g., to define a network in which the client device 100, the networked device 102, and/or the devices 206 reside). A client device 100 may access a pairing server 200 when processing an identification data 216 associated with a sandbox reachable service 114 sharing a public address with the client device 100. A pairing server 200 may perform a discovery lookup of any device that has announced that it shares a public address associated with the client device 100. Further, a sandbox reachable service 114 may announce itself to a pairing server 200 prior to the establishment of a communication session between a sandboxed application 112 and the sandbox reachable service 114.

The GUID 208, the alphanumeric name 210, the private address pair 212, the public address pair 220, and the hardware address 222 each exist within the identification data 216 of FIG. 2. According to one embodiment, a GUID 208 may be a 128-bit reference number used by software programs to uniquely identify the location of a data object. For example, FIG. 2 may be applicable to a GUID 208 of a sandbox reachable service 114 and/or a networked device 102 where it is described a global unique ID 208. It may be preferable to have a one-to-one mapping between a GUID 208 and a networked device 102. However, in the case when a sandbox reachable service 114 may be constrained to a security sandbox 104, the sandbox reachable service 114 may have no way of determining its own IP address and/or whether it resides on a same device with other services. In this case, every sandbox reachable service 114 on the same device may have its own GUID 208.

According to one embodiment, an alphanumeric name 210 may be a “Vizio® 36″ TV,” a “living room TV,” a “bedroom printer,” and/or any other human-friendly reference name of a networked device 102. According to one embodiment, a private address pair 212 may be a private Internet Protocol (IP) address and a port number associated with an application that sends and/or receives packets. According to one embodiment, a public address pair 220 may be a public IP address and a port number 604 associated with an application that sends and/or receives packets. According to one embodiment, a hardware address 222 may be a Media Access Control (MAC) address, a physical address, Ethernet hardware address (EHA), and/or any other unique identifier assigned to network interfaces for communications on the physical network segment.

A client device 100 may process an identification data 216 associated with a sandbox reachable service 114 sharing a public address with the client device 100 and determine a private address pair 212 of the sandbox reachable service 114 based on the identification data 216. A networked device 102 may also communicate a global unique identifier 208 and/or an alphanumeric name 210 to a pairing server 200 along with a hardware address 222 associated with the networked device 102, a public address pair 220 associated with a sandbox reachable service 114 of the networked device 102, and/or a private address pair 212 associated with the sandbox reachable service 114 of the networked device 102.

FIG. 3 is an exploded view of the security sandbox 104, according to one embodiment. FIG. 3 shows a security sandbox 104, a sandboxed application 112, a same origin policy exception 300, a web page 302, a script 304, a binary executable 306, an intermediate bytecode 308, an abstract syntax tree 310, an executable application 312, a HyperText Markup Language 5 (HTML5) application 314, a Javascript® application 316, an Adobe® Flash® application 318, an Asynchronous Javascript® and XML (AJAX) application 320, a JQuery® application 324, a Microsoft® Silverlight® application 326, a hyperlink 328, a frame 330, a script 332, an image 334, a header 336, and a form 338.

The sandboxed application 112 exists within the security sandbox 104 of FIG. 3. The web page 302, the script 304, the binary executable 306, the intermediate bytecode 308, the abstract syntax tree 310, and the executable application 312 are listed as general examples of the sandboxed application 112 of FIG. 3. According to one embodiment, a web page 302 may be a document and/or an information resource that is suitable for the World Wide Web and can be accessed through a web browser and displayed on a monitor and/or a mobile device. According to one embodiment, a script 304 may be a program written for a software environment that automates the execution of tasks which could alternatively be executed one-by-one by a human operator.

According to one embodiment, a binary executable 306 may be a binary file that may include a program in machine language which is ready to be run. According to one embodiment, an intermediate bytecode 308 may be a programming language implementation of instruction set designed for efficient execution by a software interpreter. According to one embodiment, an abstract syntax tree 310 may be a tree representation of the abstract syntactic structure of source code written in a programming language. According to one embodiment, an executable application 312 may be a file that causes a computer to perform indicated tasks according to encoded instructions.

The HTML5 application 314, the Javascript® application 316, the Adobe® Flash® application 318, the Microsoft® Silverlight® application 326, the JQuery® application 324, and the AJAX application 320 are listed as specific examples of the general examples of FIG. 3. According to one embodiment, a HTML5 application 314 may be a program written in the fifth revision of the hypertext markup language standard for structuring and presenting content for the World Wide Web. According to one embodiment, a Javascript® application 316 may be a program written in a scripting language commonly implemented as part of a web browser in order to create enhanced user interfaces and dynamic websites. According to one embodiment, an Adobe® Flash® application 318 may be a program written for a multimedia and software platform used for authoring of vector graphics, animation, games and Rich Internet Applications (RIAs) which can be viewed, played, and executed in Adobe® Flash® Player.

According to one embodiment, an AJAX application 320 may be a program using a XMLHttpRequest method, a program using a Msxml2.XMLHTTP method, a program using a Microsoft.XMLHTTP method, and/or any other web program that can send data to and retrieve data from a server in the background without interfering with the display and behavior of the existing page. According to one embodiment, a JQuery® application 324 may be a program written using a multi-browser collection of pre-written Javascript® designed to simply the client-side scripting of HTML. According to one embodiment, a Microsoft® Silverlight® application 326 may be a program written in a framework for writing and running RIAs with features and purposes similar to those of Adobe® Flash®.

The same origin policy exception 300 extends horizontally below the security sandbox 104 of FIG. 3. According to one embodiment, a same origin policy exception 300 may be a cross-domain scripting technique, a cross-site scripting technique, a document.domain property, a Cross-Origin Resource Sharing (CORS), a cross-document messaging, a technique for relaxing a policy preventing access to methods and properties across pages on different sites, and/or an access control algorithm governing a policy through which a secondary authentication is required when establishing a communication between the sandboxed application 112 and the networked device 102.

A client device 100 may establish a communication session between a sandboxed application 112 and a sandbox reachable service 114 using a cross-site scripting technique of a security sandbox 104. A client device 100 may also append a header 336 of a hypertext transfer protocol to permit a networked device 102 to communicate with a sandboxed application 112 as a permitted origin domain through a Cross-origin resource sharing (CORS) algorithm. Further, a client device 100 may utilize a same origin policy exception 300 through a use of a hyperlink 328, a form 338, a script 332, a frame 330, a header 336, and/or an image 334 when establishing the connection between a sandboxed application 112 and a sandbox reachable service 114.

For example, FIG. 3 may encompass a HTML5 cross-domain scripting using postMessage where it is described HTML5 application 314. With postMessage, a calling window may call any other window in a hierarchy including those in other domains. A receiving window may set up a message listener to receive said message and can return results by posting a result message back to a calling frame. Assuming a web page residing at http://example.com/index.html:

<iframe src=”http://bar.com” id=”iframe”></iframe> <form id=”form”>  <input type=”text” id=″msg″ value=″Message to send″/>  <input type=″submit″/> </form> <script> window.onload = function( ){   var win = document.getElementById(″iframe″).contentWindow;   document.getElementById(″form″).onsubmit = function(e){      win.postMessage( document.getElementById(″msg″).value );      e.preventDefault( );   }; }; </script>

An iframe may load the following HTML from bar.com:

<b>This iframe is located on bar.com</b> <div id=“test”>Send me a message!</div> <script> document.addEventListener(“message”, function(e){   document.getElementById(“test”).textContent =      e.domain + “ said: ” + e.data; }, false); </script>

When a user 820 (e.g., a human agent who uses a service) clicks on the submit button, a message may be posted to the frame read from bar.com which changes “Send me a message!” to http://bar.com said: Message to send.

The hyperlink 328, the frame 330, the script 332, the image 334, the header 336, and the form 338 comprise aspects of the same origin policy exception 300 of FIG. 3. According to one embodiment, a hyperlink 328 may be a reference to data that a reader can directly follow and/or that is followed automatically. FIG. 3 may also be applicable to a hyperlink send message interface (e.g., a mechanism by which a sandboxed application 112 sends a message to a pairing server 200) where it is described a hyperlink 328 using an <A> tag to send a message to a pairing server 200 comprised of a discovery service and a relay service. The <A> tag may link to pages that are not in a same domain as a web page being viewed in a browser. As such a link may point to the pairing server 200 and arguments to be passed in a message may be encoded as key-value pairs in a uniform resource identifier (URI) query string. For example,

<A HREF=http://pairing_server.com/f?a=10&b=bar>callf</A>

A sandboxed application 112 may announce to the pairing server 200. At a later time, a user 820 may visit example.com and view index.html. When the user 820 clicks on a “call f” hyperlink, a HTTP request may be sent to the pairing server 200. “f” may refer to a path to some arbitrary function and key-value pairs a=10 and/or b=bar may be arguments to that function. The pairing server 200 may receive an HTTP GET like this request generated using Google Chrome™:

GET /f?a=10&b=bar HTTP/1.1 Host: pairing_server.com Connection: keep-alive Referer: http://example.dom/index.html Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/ plain;q=0.8,image/png,*/*;q=0.5 User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.472.63 Safari/ 534.3 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

The URI may not indicate to which service a message is intended. This may be interpreted by the pairing server 200 as a private broadcast meaning that a message passed via a message query interface (e.g., a mechanism to communicate a message from a pairing server 200 to a sandbox reachable service 114) is passed to all sandbox reachable services in a shared network 202. In this case, a response HTML may simply be a new web page that may include a confirmation dialog and/or a notification that a message has been sent.

According to one embodiment, a frame 330 may be a frameset, an inline frame, and/or any display of web pages and/or media elements within the same browser window. According to one embodiment, a script 332 may be a HTML tag used to define a program that may accompany an HTML document and/or be directly embedded in it. FIG. 3 may encompass a SCRIPT tag where it is described a script 332 used to contact the pairing server 200. For example, a server may deliver an http://example.com/index.html that may include a cross-site <script> tag as follows:

<html>...<head> <script type=″text/Javascript″> function lookup_cb(d) { var services = d[″services″]; var slen = services.length; var s, len; s= ″<ul>″; for ( var i = 0; i < slen; ++i ) s = s + ″<li>″ + services[i].name + ″</li>″; s = s + ″</ul>″; document.getElementById(″services″).innerHTML=s; } </script></head><body> ... <div id=”services”></div> ... <script id=″external_script″ type=″text/Javascript″></script> <script> document.getElementById(″external_script″).src =  ″http://pairing_server.com/fling/lookup?callback=lookup_cb″; </script></body></html>

In the example above, Javascript® may replace a source of a <script> with id “external_script” with a script downloaded from the pairing server 200. A call being made to a sandbox reachable service 114 may be embedded in a call to “lookup” with a single argument “callback=lookup_cb.” The pairing server 200 may return a script that may include a result, e.g.,

lookup_cb({  “services”: [...],  “yourip”: “69.106.59.218”,  “version”: “1.0”,  “interval”: 900 })

The result above may include a list of “services” discovered in a user's (e.g., the user of the client device 100) shared network 202. The result may be encapsulated inside a call to lookup_cb which was a callback passed in a SRC URI to an external_script <script> tag. A returned script may be automatically executed, causing lookup_cb to be called. lookup_cb may iterate over services in a result and may output them into the HTML of the web page http://example.com/index.html.

According to one embodiment, an image 334 may be a HTML tag that incorporates inline graphics into an HTML document. FIG. 3 may also encompass an <A> tag encapsulating an <IMG> tag where it is described an image 334, thereby allowing a link to take on the appearance of a button, according to one embodiment. With Javascript® a behavior of the image may be scripted to make the button change appearance when a mouse passes over the button or when a user clicks on the button, thereby making the image behave more like a button. For example,

<A HREF=″http://pairing_server.com/f?a=10&b=bar″><IMG SRC=”f.jpg”>call f</IMG></A>

FIG. 3 may also be applicable to an IMG tag where it is described an image 334 used to communicate a call, according to one embodiment. For example,

<IMG SRC=“http://pairing_server.com/f?a=10&b=bar”>callingf . . . </IMG>

This example may correspond to a call f with arguments a=10 and/or b=bar. The pairing server 200 sees

GET /f?a=10&b=bar HTTP/1.1 Host: ec2-204-236-247-87.compute-1.amazonaws.com:7878 Connection: keep-alive Referer: http://dave.flingo.org/browser_behavior_tests/img_link.html Cache-Control: max-age=0 Accept: */* User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.472.63 Safari/ 534.3 Accept-Encoding: gzip,deflate Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

A browser may expect an image to be returned by this request. As a result, an IMG send message interface may not threaten a calling web page with script injection attacks. However, it may limit what can be returned with an IMG tag. The pairing server 200 may return a valid transparent IMG with width and height set to communicate a pair. Since an IMG body has been loaded into the calling web page, the height and width of the image are immediately available to the calling page using Javascript®, e.g.,

<HTML> <HEAD> ... <script type=″text/Javascript″> function loaded( ) {  var im = document.getElementById(″image″)  alert( ″image height=″ + im.height + ″ width=″ + im.width ); } </script> </HEAD><BODY>... <IMG ID=″image″ SRC=“http://pairing_server.com/f?a=10&b=bar” onload=″loaded( );″></IMG> </BODY> </HTML>

According to one embodiment, a header 336 may be an origin header, a referrer header, and/or any other supplemental data placed at the beginning of a block of data being stored and/or transmitted. FIG. 3 may be applicable to a passing of a URI of a web page that may include a hyperlink along with a GET request in a “referer [sic]” URI header where it is described a header 336 when a user 820 clicks on a hyperlink rendered from an <A> tag. A pairing server 200 can interpret a referer URI as an URI of a web page to be relayed to a sandbox reachable service 114 that can render web pages. For example, the following hyperlink appears in the web page http://example.com/foo.html

<A HREF=http://pairing_server.com/fling> fling this web page </A>

When a user 820 clicks on “fling this page,” the pairing server 200 may read the referer URI (e.g., associated with a client device 100) to determine that the page http://example.com/foo.html should be relayed to the receiving sandbox-reachable services.

FIG. 3 may also encompass interpreting a referer URI dependent on page content where it is described a header 336, according to one embodiment. For example, a web page 302 that may include a video may cause a reference to the video to be passed to a networked device 102. Similarly, a web page 302 that may include an audio may cause a reference to the audio to be passed to a networked device 102.

According to one embodiment, a form 338 may be a HTML tag that allows a web user to enter data that is sent to a server for processing. For example, FIG. 3 may encompass a sandboxed application 112 sending messages to a sandbox reachable service 114 via HTML FORMs where it is described a form 338. The action of a form may direct the messages via the pairing server 200. Assume a web page may reside at http://example.com/index.html and assume a relay infrastructure may run on a server with example domain “pairing_server.com.” The video to be relayed may be titled “Waxing Love.”

<form name=“input” action=“http://pairing_server.com/fling” method=“post”> <INPUT TYPE=“HIDDEN” id=“title” name=“title” value=“Waxing Love” /> <INPUT TYPE=“HIDDEN” id=“description” name=“description” value=“An example video.” /> <INPUT TYPE=“HIDDEN” id=“uri” name=“uri” value=“http://example.com/wax.mp4” /> <INPUT TYPE=“SUBMIT” NAME=“submit” VALUE=“fling” /> </form>

A hidden type may populate an HTTP POST. In this example, an URI of a resource may be passed to a pairing server 200. The pairing server 200 may treat the POST as a message to be forwarded to services. In this example, the server may see something like:

 POST /fling HTTP/1.1  Host: pairing_server.com  Origin: http://example.com/index.html  User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4;  en-us)  AppleWebKit/533.16 (KHTML, like Gecko) Version/5.0 Safari/533.16  Content-Type: application/x-www-form-urlencoded  Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/  plain;q=0.8,image/png,*/*;q=0.5  Referer: http://example.com/index.html  Accept-Language: en-us  Accept-Encoding: gzip, deflate  Content-Length: 95  Connection: keep-alive  title=Waxing+Love&description=An+example+video.&uri= http%3A%2F%2Fexample.com%2Fwax.mp4  &submit=fling

The intended message may be encoded in key-value pairs of a message body. In this case a title, description, and URI and an operation “fling.”

FIG. 4 is an exploded view of the pairing server 200, according to one embodiment. FIG. 4 shows a pairing server 200, a discovery module 400, a discovery algorithm 402, a relay module 404, a relay algorithm 406, a protocols 408, and a database 422.

The discovery module 400 and the relay module 404 communicate with the database 422, and they all exist within the pairing server 200 of FIG. 4. According to one embodiment, a discovery module 400 may be a self-contained component of a pairing server 200 that detects devices and services on a network. According to one embodiment, a relay module 404 may be a self-contained component of a pairing server 200 that transmits data to an intermediate node located between a source and destination that are separated by a distance that prevents direct communications. According to one embodiment, a database 422 may be a structured collection of information.

A networked device 102 may announce a sandbox reachable service 114 to a discovery module 400. When a shared network 202 is determined to be commonly associated with a client device 100 and a networked device 102, a pairing server 200 may receive, store using a processor 108 and a memory 110, and communicate to a client device 100 a global unique identifier 208 and/or an alphanumeric name 210 in an announcement from a networked device 102 along with a hardware address 222 associated with the networked device 102, a public address pair 220 associated with a sandbox reachable service 114 of the networked device 102, and/or a private address pair 212 associated with the sandbox reachable service 114 of the networked device 102. A shared network 202 is determined to be commonly associated with a client device 100 and a networked device 102 when it is presently shared and/or was previously shared by the networked device 102 and the client device 100.

The discovery algorithm 402 exists within the discovery module 400 of FIG. 4. According to one embodiment, a discovery algorithm 402 may be a procedure for detecting devices and services on a network. A service agent module of a networked device 102 may coordinate communications with a discovery module 400 of a security sandbox 104 and/or a pairing server 200. For example, the service agent sits outside a browser or browser-like security sandbox thereby allowing it to listen on a socket. Thus, it can act as a means for services on the same device to discover one another. The service agent may also announce on behalf of service(s) local to that device.

The relay algorithm 406 exists within the relay module 404 of FIG. 4. According to one embodiment, a relay algorithm 406 may be a procedure for transmitting data to an intermediate node located between a source and destination that are separated by a distance that prevents direct communications. A service agent module of a networked device 102 may coordinate communications with a discovery module 400 of a security sandbox 104 and/or a pairing server 200. For example, the service agent sits outside a browser or browser-like security sandbox thereby allowing it to listen on a socket. Thus, it can act as a relay for messages arriving from a shared network 202.

When a client device 100 and a networked device 102 reside on networks that are incommunicable with each other comprising a firewall separation, a different network separation, a physical separation, and/or an unreachable connection separation, a sandboxed application 112 of a security sandbox 104 of the client device 100 and a sandbox reachable service 114 of the networked device 102 may communicate with each other through a relay service employed by a pairing server 200 having a discovery module 400 and a relay module 404 to facilitate a trusted communication (e.g., by guarding a GUID 208, a private IP address 808, and/or a hardware address 222 of a networked device 102 and/or a sandbox reachable service 114 from a sandboxed application 112) between the sandboxed application 112 and the sandbox reachable service 114.

The discovery module 400 and the relay module 404 can also communicate using the protocols 408 of FIG. 4. According to one embodiment, a protocols 408 may be a system of digital message formats and rules for exchanging those messages in and/or between devices sharing a network.

FIG. 5 is an exploded view of the client device 100, according to one embodiment. FIG. 5 shows a client device 100, a discovery module 500, a relay module 504, a discovery algorithm 502, a relay algorithm 506, an extension 518, a sandboxed application 112, a protocols 508, a Bonjour® protocol 510, a Simple Service Discovery Protocol (SSDP) protocol 512, a local service discovery (LSD) uTorrent® protocol 514, a local area network (LAN) based protocol 516, a multicast protocol 518, and an anycast protocol 520.

The extension 518 exists within the client device 100 of FIG. 5. According to one embodiment, an extension 518 may be a program adding the capabilities of a discovery module 500 and/or a relay module 504 to a browser. A client device 100 may extend a security sandbox 104 with a discovery algorithm 502 and a relay algorithm 506 through a discovery module 500 and a relay module 504 added to the security sandbox 104. A client device 100 may also bypass a pairing server 200 having a discovery algorithm 402 and a relay algorithm 406 when establishing a connection between a sandboxed application 112 and a sandbox reachable service 114 when the security is extended with the discovery algorithm 502 and the relay algorithm 506 through the discovery module 500 and the relay module 504 added to a security sandbox 104.

The discovery module 500, the relay module 504, and the sandboxed application 112 exist within the extension 518 of FIG. 5. The discovery module 500 communicates with the relay module 504 of FIG. 5. According to one embodiment, a discovery module 500 may be a self-contained component of a client device 100 that detects devices and services on a network. According to one embodiment, a relay module 504 may be a self-contained component of a client device 100 that transmits data to an intermediate node located between a source and destination that are separated by a distance that prevents direct communications. A networked device 102 may announce a sandbox reachable service 114 to a discovery module 500. A networked device 102 may also automatically instantiate a communication between a sandbox reachable service 114 of the networked device 102 and a client device 100 when a relay module 504 sends a request from a sandboxed application 112 of the client device 100 to the sandbox reachable service 114.

The discovery algorithm 502 exists within the discovery module 500 of FIG. 5. A client device 100 may apply a discovery algorithm 502 of a security sandbox 104 to determine that a networked device 102 having a sandbox reachable service 114 communicates in a shared network 202 common to the client device 100 and the networked device 102.

The relay algorithm 506 exists within the relay module 504 of FIG. 5. A client device 100 may apply a relay algorithm 506 of a security sandbox 104 to establish a connection between a sandboxed application 112 and a sandbox reachable service 114 of a networked device 102. A client device 100 may utilize a WebSocket (e.g., a web technology providing full-duplex communications channels over a single Transmission Control Protocol connection) and/or a long polling service message query interface to reduce a latency of message delivery during a trusted communication between a sandboxed application 112 and a sandbox reachable service 114. A client device 100 may also optimize a polling period between polling such that it is less than a timeout period of a session through the relay service. A client device 100 may initiate a relay service through a series of web pages where information is communicated using a hyperlink 328 that points at a pairing server 200, and/or a form 338 having a confirmation dialog that is submitted back to the pairing server 200. A global unique identifier 208 (e.g., of a sandbox reachable service 114) may be masked through a pairing server 200 when a confirmation dialog is served from the pairing server 200.

The discovery algorithm 502 and the relay algorithm 506 can communicate using the protocols 508 of FIG. 5. The Bonjour® protocol 510, the SSDP protocol 512, the LSD uTorrent® protocol 514, the LAN-based protocol 516, the multicast protocol 518, and the anycast protocol 520 exist within the protocols 508 of FIG. 5. According to one embodiment, a Bonjour® protocol 510 may be a system of technologies including service discovery, address assignment, and hostname resolution developed by Apple®. According to one embodiment, a SSDP protocol 512 may be a network protocol based on the Internet Protocol Suite for advertisement and discovery of network services and presence information that is accomplished without assistance of server-based configuration mechanisms and without special static configuration of a network host. According to one embodiment, a LSD uTorrent® protocol 514 may be an extension to the BitTorrent® file distribution system that is designed to support the discovery of local BitTorrent® peers, aiming to minimize traffic through an Internet service provider's (ISP) channel and minimize use of higher-bandwidth LAN while implemented in a client with a small memory footprint. According to one embodiment, a LAN-based protocol 516 may be a system of broadcast-based local area network discovery. According to one embodiment, a multicast protocol 518 may be a system of delivering information simultaneously to a group of destination devices in a single transmission from a source. According to one embodiment, an anycast protocol 520 may be a system of routing datagrams from a single sender to the topologically nearest node in a group of potential receivers, though it may be sent to several nodes, all identified by the same destination address.

A discovery algorithm 502 may utilize a protocols 508 comprising a Bonjour® protocol 510, a SSDP protocol 512, a LSD uTorrent® protocol 514, a multicast protocol 518, an anycast protocol 520, and/or another LAN-based protocol 516 that discovers services in a LAN based on a broadcast from any one of an operating system service, a security sandbox 104, a client device 100, a sandbox reachable service 114, and a networked device 102.

FIG. 6 is a table of example network information stored in a database 422 of a pairing server 200, according to one embodiment. FIG. 6 shows a GUID 208, an alphanumeric name 210, a network 600, a service 601, a Network Address Translator (NAT) 602, a port number 604, an IP address 606, and a table 650. The GUID 208, the alphanumeric name 210, the network 600, the service 601, the NAT 602, the port number 604, and the IP address 606 are headings for each column of a table 650 of FIG. 6.

According to one embodiment, a network 600 may be a collection of hardware interconnected by communication channels that allow sharing of resources and information. According to one embodiment, a service 601 may be a description and/or a name of a service provided by a device. According to one embodiment, a NAT 602 may be an indication of whether or not a NAT device is present on a network 600. According to one embodiment, a port number 604 may be a 16-bit reference number for a process-specific software construct serving as a communications endpoint in a computer's host operating system. According to one embodiment, an IP address 606 may be a numerical label assigned to each device participating in a computer network that uses the Internet Protocol for communication. According to one embodiment, a table 650 may be a set of data elements that is organized using a model of vertical columns which are identified by names and horizontal rows. A sandbox reachable service 114 may communicate a GUID 208 and/or an alphanumeric name 210 to a pairing server 200 along with an IP address 606 and/or a port number 604 of the sandbox reachable service 114.

FIG. 7 is a block diagram of a method by which a security sandbox 104 can communicate with a sandbox reachable service 114 that previously operated on a shared network 202, according to one embodiment. FIG. 7 shows a client device 100, a storage 109, a remote access token 702, a private IP address 704, and a hardware address 222. The storage 109 exists within the client device 100 of FIG. 7. The remote access token 702 exists within the storage 109 of FIG. 7. According to one embodiment, a remote access token 702 may be an object encapsulating a security descriptor of a process so that a client device 100 and a networked device 102 that previously established a communication session automatically recognize each other. A cookie associated with a security sandbox 104 may be used to store a remote access token 702 on a storage 109 (e.g., Web storage, HTML5 storage) of a client device 100. A client device 100 can communicate with a sandbox reachable service 114 that previously operated on a common shared network 202 through a remote access token 702.

The private IP address 704 and the hardware address 222 comprise aspects of the remote access token 702 of FIG. 7. According to one embodiment, a private IP address 704 may be an IP address of a node on a private network that may not be used to route packets on the public Internet. A remote access token 702 may identify a set of communicable private Internet Protocol (IP) address (e.g., the private ip address 704) and/or hardware addresses (e.g., the hardware address 222) associated with a sandbox reachable service 114 that previously operated on a common shared network 202 with a client device 100. For example, FIG. 7 may encompass a preference for associating a device with a hardware address 222 where it is described a hardware address 222. A private IP address 704 may change as devices move between networks. However, a hardware address 222 may be a stable, long-term pseudonym for a device and thus may serve a good value from which to derive a remote access token 702.

FIG. 8 is a schematic diagram of a private network 800 and a private network 802 communicating over the public Internet via a NAT device 804 and a NAT device 806, according to one embodiment. FIG. 8 shows a client device 100, a networked device 102, a pairing server 200, a private network 800, a private network 802, a NAT device 804, a NAT device 806, a private IP address 808, a private IP address 810, a public IP address 812, a public IP address 814, a tablet device 816, a printer 818, and a user 820.

The private network 800 and the private network 802 communicate bidirectionally through the pairing server 200 of FIG. 8. According to one embodiment, a private network 800 may be a home network and/or any other network with private IP space that may be behind a NAT device 804. According to one embodiment, a private network 802 may be an office network and/or any other network with private IP space that may be behind a NAT device 806. A client device 100 (e.g., laptop) and a networked device 102 (e.g., television) may reside on networks that are incommunicable with each other comprising a firewall separation, a different network separation, a physical separation, and/or an unreachable connection separation. A sandboxed application 112 of a security sandbox 104 of the client device 100 and a sandbox reachable service 114 of the networked device 102 may communicate with each other through a relay service employed by a pairing server 200 having the discovery module and the relay module to facilitate a trusted communication between the sandboxed application 112 and the sandbox reachable service 114.

The NAT device 804, the networked device 102, and the tablet device 816 are all interconnected and exist within the private network 800 of FIG. 8. According to one embodiment, a NAT device 804 may be a device for modifying IP address information in IP packet headers while in transit across a traffic routing device. According to one embodiment, a tablet device 816 may be a one-piece mobile computer, primarily operated by touchscreen and/or an onscreen virtual keyboard. A NAT device 804 may be coupled with a network on which a networked device 102 operates.

The NAT device 806, the client device 100, and the printer 818 are all interconnected and exist within the private network 802 of FIG. 8. According to one embodiment, a NAT device 806 may be a device for modifying IP address information in IP packet headers while in transit across a traffic routing device. According to one embodiment, a printer 818 may be a peripheral device which produces a representation of an electronic document on physical media. A NAT device 806 may be coupled with a network on which a client device 100 operates.

The NAT device 804 connects to the pairing server 200 through the public IP address 812 of FIG. 8. The NAT device 804 connects to the networked device 102 through the private IP address 808 of the networked device 102 of FIG. 8. According to one embodiment, a public IP address 812 may be an IP address of a private network 800 that may be used to route packets on the public Internet. According to one embodiment, a private IP address 808 may be an IP address of a networked device 102 on a private network 800. A trusted communication may be facilitated in a manner such that a sandboxed application 112 never learns a private IP address 808 and/or a hardware address 222 of a networked device 102 when a NAT device 804 may translate a private IP address 808 of a networked device 102 to a public IP address 812 visible to a sandboxed application 112.

The NAT device 806 connects to the pairing server 200 through the public IP address 814 of FIG. 8. The NAT device 806 connects to the client device 100 through the private IP address 810 of the client device 100 of FIG. 8. According to one embodiment, a public IP address 814 may be an IP address of a private network 802 that may be used to route packets on the public Internet. According to one embodiment, a private IP address 810 may be an IP address of a networked device 102 on a private network 802. A trusted communication may be facilitated in a manner such that a sandboxed application 112 never learns a private IP address 808 and/or a hardware address 222 of a networked device 102 when a NAT device 806 may receive communications from a public IP address 812 of a private network 800 on which a sandbox reachable service 114 operates.

For example, FIG. 8 may encompass a sandboxed application 112 being constrained to know nothing but a description and/or name of a service (e.g., no private IP address 808, no hardware address 222, no GUID 208) where it is described a private IP address 808.

FIG. 8 may also be applicable to a sandboxed application 112 being constrained to know nothing at all about who receives a communication (e.g., no private IP address 808, no hardware address 222, no GUID 208, no description and/or name of a service) where it is described a private IP address 808, according to one embodiment. For example, a sandboxed application 112 may include a hyperlink 328 to a pairing server 200 in which the hyperlink 328 may specify a message but no recipient http://flingo.tv/fling/a?url_of_media_to_be_played. A pairing server 200 may disambiguate an intended recipient (e.g., by returning a form 338 to a user 820 in which the user 820 may select a sandbox reachable service 114). A returned form 338 may execute in a security sandbox 104 associated with a domain of a pairing server 200 which may be different from a security sandbox 104 of a sandboxed application 112.

The user 820 exists within the private network 802 of FIG. 8. According to one embodiment, a user 820 may be a human and/or software agent who uses a computer and/or network service.

For example, Jane may buy a new television and set it up to become part of her network. Then, she may use her tablet device to browse a website that automatically recognizes the new television in her network. This may be achieved within the security constraints imposed by a web browser and in a manner that resists unsolicited content to Jane's television. Furthermore, the new television may be a stereo, a game console, another computer, and/or any other device with a network interface.

Although the present embodiments have been described with reference to specific example embodiments, it will be evident that various modifications and changes may be made to these embodiments without departing from the broader spirit and scope of the various embodiments. For example, the various devices and modules described herein may be enabled and operated using hardware circuitry (e.g., CMOS based logic circuitry), firmware, software or any combination of hardware, firmware, and/or software (e.g., embodied in a machine readable medium). For example, the various electrical structure and methods may be embodied using transistors, logic gates, and/or electrical circuits (e.g., application specific integrated (ASIC) circuitry and/or Digital Signal Processor (DSP) circuitry).

In addition, it will be appreciated that the various operations, processes, and/or methods disclosed herein may be embodied in a machine-readable medium and/or a machine accessible medium compatible with a data processing system (e.g., a computer device). Accordingly, the specification and drawings are to be regarded in an illustrative in rather than a restrictive sense. 

What is claimed is:
 1. A method of a client device comprising: constraining an executable environment in a security sandbox; executing a sandboxed application in the executable environment using a processor and a memory; and automatically instantiating a connection between the sandboxed application and a sandbox reachable service of a networked media device.
 2. The method of claim 1 further comprising at least one of: processing an identification data associated with the sandbox reachable service sharing a public address with the client device; determining a private address pair of the sandbox reachable service based on the identification data; and establishing a communication session between the sandboxed application and the sandbox reachable service using a cross-site scripting technique of the security sandbox.
 3. The method of claim 2 further comprising: appending a header of a hypertext transfer protocol to permit the networked media device to communicate with the sandboxed application as a permitted origin domain through a Cross-origin resource sharing (CORS) algorithm, wherein the header is either one of a origin header when the CORS algorithm is applied and a referrer header in an alternate algorithm.
 4. The method of claim 2 further comprising: accessing a pairing server when processing the identification data associated with the sandbox reachable service sharing the public address with the client device, wherein the pairing server performs a discovery lookup of any device that has announced that it shares the public address associated with the client device, and wherein the sandbox reachable service announces itself to the pairing server prior to the establishment of the communication session between the sandboxed application and the sandbox reachable service.
 5. The method of claim 4 further comprising at least one of: wherein the sandbox reachable service announces an availability of the sandbox reachable service across a range of public addresses such that the sandboxed application communicates with the sandbox reachable service in any one of the range of the public addresses, wherein the range of public addresses is known by the pairing server so that the announcement of the availability of the sandbox reachable service across the range of public addresses is unnecessary, wherein the sandbox reachable service communicates at least one of a global unique identifier and an alphanumeric name to the pairing server along with the private address pair of the sandbox reachable service, and wherein the private address pair includes a private IP address and a port number associated with the sandbox reachable service.
 6. The method of claim 2 further comprising: eliminating a communication through a centralized infrastructure when the sandboxed application and the sandbox reachable service communicate in a shared network common to the client device and the networked media device when the connection is established, wherein the shared network is at least one of a local area network, a multicast network, an anycast network, and a multilan network; minimizing a latency in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked media device when the connection is established; and improving privacy in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked media device when the connection is established.
 7. The method of claim 1 further comprising: wherein the sandboxed application is at least one of a web page, a script, a binary executable, an intermediate bytecode, an abstract syntax tree, and an executable application in the security sandbox, wherein the sandboxed application comprises at least one of a markup language application such as a HyperText Markup Language 5 (HTML5) application, a Javascript® application, an Adobe® Flash® application, a Microsoft® Silverlight® application, a JQuery® application, and an Asynchronous Javascript® and a XML (AJAX) application, and wherein an access control algorithm governs a policy through which a secondary authentication is required when establishing a communication between the sandboxed application and the networked media device.
 8. The method of claim 7 further comprising: utilizing an exception to a same origin policy through a use of at least one of a hyperlink, a form, the script, a frame, a header, and an image when establishing the connection between the sandboxed application and the sandbox reachable service.
 9. The method of claim 1 further comprising: extending the security sandbox with a discovery algorithm and a relay algorithm through a discovery module and a relay module added to the security sandbox; and bypassing a pairing server having the discovery algorithm and the relay algorithm when establishing the connection between the sandboxed application and the sandbox reachable service when the security sandbox is extended with the discovery algorithm and the relay algorithm through the discovery module and the relay module added to the security sandbox.
 10. The method of claim 9 further comprising: applying the discovery algorithm of the security sandbox to determine that the networked media device having the sandbox reachable service communicates in a shared network common to the client device and the networked media device; and applying the relay algorithm of the security sandbox to establish the connection between the sandboxed application and the sandbox reachable service of the networked media device.
 11. The method of claim 10: wherein the discovery algorithm utilizes a protocol comprising at least one of a Bonjour® protocol, a SSDP protocol, a LSD uTorrent® protocol, a multicast protocol, an anycast protocol, and another Local Area Network (LAN) based protocol that discovers services in a LAN based on a broadcast from any one of an operating system service, the security sandbox, the client device, the sandbox reachable service, and the networked media device.
 12. The method of claim 1: wherein a cookie associated with the security sandbox is used to store a remote access token on a storage of the client device, wherein the remote access token identifies at least one of a set of communicable private Internet Protocol (IP) addresses and hardware addresses associated with sandbox reachable services that previously operated on a common shared network with the client device, and wherein the client device can communicate with the sandbox reachable services that previously operated on the common shared network through the remote access token.
 13. The method of claim 1: wherein the client device and the networked media device reside on networks that are incommunicable with each other comprising at least one of a firewall separation, a different network separation, a physical separation, an unreachable connection separation, and wherein the sandboxed application of the security sandbox of the client device and the sandbox reachable service of the networked media device communicate with each other through a relay service employed by a pairing server having a discovery module and a relay module to facilitate a trusted communication between the sandboxed application and the sandbox reachable service.
 14. The method of claim 13: wherein the trusted communication is facilitated in a manner such that the sandboxed application never learns at least one of a private IP address and a hardware address of the networked media device when: a first Network Address Translator (NAT) device coupled with a network on which the client device operates to receive communications from a public IP address of a different network on which the sandbox reachable service operates, and wherein a second NAT device coupled with the different network on which the networked media device operates to translate the private IP address of the networked media device to the public IP address visible to the sandboxed application.
 15. The method of claim 14: wherein the networked media device comprises a plurality of sandbox reachable applications including the sandbox reachable application, and wherein a service agent module of the networked media device coordinates communications with the discovery module of at least one of the security sandbox and the pairing server, wherein the security sandbox is at least one of an operating system on which the sandboxed application is hosted and a browser application of the operating system, and wherein the networked media device is at least one of a television, a projection screen, a multimedia display, a touchscreen display, an audio device, and a multidimensional visual presentation device.
 16. The method of claim 15 further comprising: utilizing at least one of a WebSocket and a long polling service message query interface to reduce a latency of message delivery during the trusted communication between the sandboxed application and the sandbox reachable service; and optimizing a polling period between polling such that it is less than a timeout period of a session through the relay service.
 17. The method of claim 16 further comprising: initiating the relay service through at least one of a series of web pages where information is communicated using hyperlinks that point at the pairing server, and a form having a confirmation dialog that is submitted back to the pairing server, and wherein a global unique identifier is masked through the pairing server when the confirmation dialog is served from the pairing server.
 18. A method of a networked device comprising: announcing a sandbox reachable service of the networked device to a discovery module using a processor and memory; and automatically instantiating a communication between the sandbox reachable service of the networked device and a client device when a relay module sends a request from a sandboxed application of the client device to the sandbox reachable service.
 19. The method of claim 18 wherein the client device to operate in at least one manner such that the client device: to process an identification data associated with the sandbox reachable service sharing a public address with the client device; to determine a private address pair of the sandbox reachable service based on the identification data; and to establish a communication session between the sandboxed application and the sandbox reachable service using a cross-site scripting technique of a security sandbox.
 20. The method of claim 19 further comprising: appending a header of a hypertext transfer protocol to permit the networked device to communicate with the sandboxed application as a permitted origin domain through a Cross-origin resource sharing (CORS) algorithm, wherein the header is either one of a origin header when the CORS algorithm is applied and a referrer header in an alternate algorithm.
 21. The method of claim 19 wherein the client device: to access a pairing server when processing the identification data associated with the sandbox reachable service sharing the public address with the client device, wherein the pairing server performs a discovery lookup of any devices that have announced that they share the public address associated with the client device, and wherein the sandbox reachable service announces itself to the pairing server prior to the establishment of the communication session between the sandboxed application and the sandbox reachable service.
 22. The method of claim 21 further comprising at least one of: announcing an availability of the sandbox reachable service across a range of public addresses such that the sandboxed application communicates with the sandbox reachable service in any one of the range of the public addresses; and communicating at least one of a global unique identifier, a hardware address, and an alphanumeric name to the pairing server along with the private address pair of the sandbox reachable service, and wherein the private address pair includes a private IP address and a port number associated with the sandbox reachable service.
 23. The method of claim 19 further comprising: eliminating a communication through a centralized infrastructure when the sandboxed application and the sandbox reachable service communicate in a shared network common to the client device and the networked device when the communication is established, wherein the shared network is at least one of a local area network, a multicast network, an anycast network, and a multilan network; minimizing a latency in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked device when the communication is established; and improving privacy in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked device when the communication is established.
 24. The method of claim 18: wherein the sandboxed application is at least one of a web page, a script, a binary executable, an intermediate bytecode, an abstract syntax tree, and an executable application in a security sandbox, wherein the sandboxed application comprises at least one of a markup language application such as a HyperText Markup Language 5 (HTML5) application, a Javascript® application, an Adobe® Flash® application, a Microsoft® Silverlight® application, a JQuery® application, and an Asynchronous Javascript® and a XML (AJAX) application, and wherein an access control algorithm governs a policy through which a secondary authentication is required when establishing a communication between the sandboxed application and the networked device.
 25. The method of claim 24 wherein the client device: to utilize an exception to a same origin policy through a use of at least one of a hyperlink, a form, the script, a frame, a header, and an image when establishing the communication between the sandboxed application and the sandbox reachable service.
 26. The method of claim 18 wherein the client device: to extend a security sandbox with a discovery algorithm and a relay algorithm through the discovery module and the relay module added to the security sandbox; and to bypass a pairing server having the discovery algorithm and the relay algorithm when establishing the communication between the sandboxed application and the sandbox reachable service when the security is extended with the discovery algorithm and the relay algorithm through the discovery module and the relay module added to the security sandbox.
 27. The method of claim 26 wherein the client device: to apply the discovery algorithm of the security sandbox to determine that the networked device having the sandbox reachable service communicates in a shared network common to the client device and the networked device; and to apply the relay algorithm of the security sandbox to establish the communication between the sandboxed application and the sandbox reachable service of the networked device.
 28. The method of claim 27: wherein the discovery algorithm utilizes a protocol comprising at least one of a Bonjour® protocol, a SSDP protocol, a LSD uTorrent® protocol, a multicast protocol, an anycast protocol, and another Local Area Network (LAN) based protocol that discovers services in a LAN based on a broadcast from any one of an operating system service, the security sandbox, the client device, the sandbox reachable service, and the networked device.
 29. The method of claim 28: wherein a cookie associated with the security sandbox is used to store a remote access token on a storage of the client device, wherein the remote access token identifies at least one of a set of communicable private Internet Protocol (IP) addresses and hardware addresses associated with sandbox reachable services that previously operated on a common shared network with the client device, and wherein the client device can communicate with the sandbox reachable services that previously operated on the common shared network through the remote access token.
 30. The method of claim 29: wherein the client device and the networked device reside on networks that are incommunicable with each other comprising at least one of a firewall separation, a different network separation, a physical separation, an unreachable connection separation, and wherein the sandboxed application of the security sandbox of the client device and the sandbox reachable service of the networked device communicate with each other through a relay service employed by the pairing server having the discovery module and the relay module to facilitate a trusted communication between the sandboxed application and the sandbox reachable service.
 31. The method of claim 30: wherein the trusted communication is facilitated in a manner such that the sandboxed application never learns at least one of a private IP address and a hardware address of the networked device when: a first Network Address Translator (NAT) device coupled with a network on which the client device operates to receives communications from a public IP address of a different network on which the sandbox reachable service operates, and wherein a second NAT device coupled with the different network on which the networked device operates to translates the private IP address of the networked device to the public IP address visible to the sandboxed application.
 32. The method of claim 31: wherein the networked device comprises a plurality of sandbox reachable applications including the sandbox reachable application, and wherein a service agent module of the networked device coordinates communications with the discovery module of at least one of the security sandbox and the pairing server, wherein the security sandbox is at least one of an operating system on which the sandboxed application is hosted and a browser application of the operating system, and wherein the networked device is at least one of a television, a projection screen, a multimedia display, a touchscreen display, an audio device, a weather measurement device, a traffic monitoring device, a status update device, a global positioning device, a geospatial estimation device, a tracking device, a bidirectional communication device, a unicast device, a broadcast device, and a multidimensional visual presentation device.
 33. The method of claim 32 wherein the client device: to utilize at least one of a WebSocket and a long polling service message query interface to reduce a latency of message delivery during the trusted communication between the sandboxed application and the sandbox reachable service; and to optimize a polling period between polling such that it is less than a timeout period of a session through the relay service.
 34. The method of claim 33 wherein the client device: to initiate the relay service through at least one of a series of web pages where information is communicated using hyperlinks that point at the pairing server, and a form having a confirmation dialog that is submitted back to the pairing server, and wherein a global unique identifier is masked through the pairing server when the confirmation dialog is served from the pairing server.
 35. A system comprising: a networked device to announce a sandbox reachable service of the networked device to a discovery module using a processor and memory; and a client device to constrain an executable environment in a security sandbox, to execute a sandboxed application in the security sandbox, and to automatically instantiate a connection between the sandboxed application and the sandbox reachable service of the networked device.
 36. The system of claim 35 wherein the client device: to process an identification data associated with the sandbox reachable service sharing a public address with the client device; to determine a private address pair of the sandbox reachable service based on the identification data; and to establish a communication session between the sandboxed application and the sandbox reachable service using a cross-site scripting technique of the security sandbox.
 37. The system of claim 36: wherein the communication session is established by appending a header of a hypertext transfer protocol to permit the networked device to communicate with the sandboxed application as a permitted origin domain through a Cross-origin resource sharing (CORS) algorithm, wherein the header is either one of a origin header when the CORS algorithm is applied and a referrer header in an alternate algorithm.
 38. The system of claim 36 wherein the client device: to access a pairing server when processing the identification data associated with the sandbox reachable service sharing the public address with the client device, wherein the pairing server performs a discovery lookup of any device that have announced that they share the public address associated with the client device, and wherein the sandbox reachable service announces itself to the pairing server prior to the establishment of the communication session between the sandboxed application and the sandbox reachable service.
 39. The system of claim 38 wherein the networked device to at least one of: announce an availability of the sandbox reachable service across a range of public addresses such that the sandboxed application communicates with the sandbox reachable service in any one of the range of the public addresses, communicate at least one of a global unique identifier and an alphanumeric name to the pairing server along with at least one of a hardware address associated with the networked device, a public address pair associated with a sandbox reachable service of the networked device, and a private address pair associated with the sandbox reachable service of the networked device, and wherein the private address pair includes a private IP address and a port number associated with the sandbox reachable service.
 40. The system of claim 39 wherein the client device: to eliminate a communication through a centralized infrastructure when the sandboxed application and the sandbox reachable service communicate in a shared network common to the client device and the networked device when the connection is established, wherein the shared network is at least one of a local area network, a multicast network, an anycast network, and a multilan network; to minimize a latency in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked device when the connection is established; and to improve privacy in the communication session when the sandboxed application and the sandbox reachable service communicate in the shared network common to the client device and the networked device when the connection is established.
 41. The system of claim 35: wherein the sandboxed application is at least one of a web page, a script, a binary executable, an intermediate bytecode, an abstract syntax tree, and an executable application in the security sandbox, wherein the sandboxed application comprises at least one of a markup language application such as a HyperText Markup Language 5 (HTML5) application, a Javascript® application, an Adobe® Flash® application, a Microsoft® Silverlight® application, a JQuery® application, and an Asynchronous Javascript® and a XML (AJAX) application, and wherein an access control algorithm governs a policy through which a secondary authentication is required when establishing a communication between the sandboxed application and the networked device.
 42. The system of claim 41 wherein the client device: to utilize an exception to a same origin policy through a use of at least one of a hyperlink, a form, the script, a frame, a header, and an image when establishing the connection between the sandboxed application and the sandbox reachable service.
 43. The system of claim 35 wherein the client device: to extend the security sandbox with a discovery algorithm and a relay algorithm through the discovery module and a relay module added to the security sandbox, and to bypass a pairing server having the discovery algorithm and the relay algorithm when establishing the connection between the sandboxed application and the sandbox reachable service when the security is extended with the discovery algorithm and the relay algorithm through the discovery module and the relay module added to the security sandbox.
 44. The system of claim 43 wherein the client device: to apply the discovery algorithm of the security sandbox to determine that the networked device having the sandbox reachable service communicates in a shared network common to the client device and the networked device, and to apply the relay algorithm of the security sandbox to establish the connection between the sandboxed application and the sandbox reachable service of the networked device.
 45. The system of claim 44: wherein the discovery algorithm utilizes a protocol comprising at least one of a Bonjour® protocol, a SSDP protocol, a LSD uTorrent® protocol, a multicast protocol, an anycast protocol, and another Local Area Network (LAN) based protocol that discovers services in a LAN based on a broadcast from any one of an operating system service, the security sandbox, the client device, the sandbox reachable service, and the networked device.
 46. The system of claim 45: wherein a cookie associated with the security sandbox is used to store a remote access token on a storage of the client device, wherein the remote access token identifies at least one of a set of communicable private Internet Protocol (IP) addresses and hardware addresses associated with sandbox reachable services that previously operated on a common shared network with the client device, and wherein the client device can communicate with the sandbox reachable services that previously operated on the common shared network through the remote access token.
 47. The system of claim 46: wherein the client device and the networked device reside on networks that are incommunicable with each other comprising at least one of a firewall separation, a different network separation, a physical separation, an unreachable connection separation, and wherein the sandboxed application of the security sandbox of the client device and the sandbox reachable service of the networked device communicate with each other through a relay service employed by the pairing server having the discovery module and the relay module to facilitate a trusted communication between the sandboxed application and the sandbox reachable service.
 48. The system of claim 47: wherein the trusted communication is facilitated in a manner such that the sandboxed application never learns at least one of a private IP address and a hardware address of the networked device when: a first Network Address Translator (NAT) device coupled with a network on which the client device operates to receives communications from a public IP address of a different network on which the sandbox reachable service operates, and wherein a second NAT device coupled with the different network on which the networked device operates to translates the private IP address of the networked device to the public IP address visible to the sandboxed application.
 49. The system of claim 48: wherein the networked device comprises a plurality of sandbox reachable applications including the sandbox reachable application, and wherein a service agent module of the networked device coordinates communications with the discovery module of at least one of the security sandbox and the pairing server, wherein the security sandbox is at least one of an operating system on which the sandboxed application is hosted and a browser application of the operating system, and wherein the networked device is at least one of a television, a projection screen, a multimedia display, a touchscreen display, an audio device, a weather measurement device, a traffic monitoring device, a status update device, a global positioning device, a geospatial estimation device, a tracking device, a bidirectional communication device, a unicast device, a broadcast device, and a multidimensional visual presentation device.
 50. The system of claim 49 wherein the client device: to utilize at least one of a WebSocket and a long polling service message query interface to reduce a latency of message delivery during the trusted communication between the sandboxed application and the sandbox reachable service, and to optimize a polling period between polling such that it is less than a timeout period of a session through the relay service.
 51. The system of claim 50 wherein the client device: to initiate the relay service through at least one of a series of web pages where information is communicated using hyperlinks that point at the pairing server, and a form having a confirmation dialog that is submitted back to the pairing server, and wherein a global unique identifier is masked through the pairing server when the confirmation dialog is served from the pairing server. 